Symptom
An external Security Scanner Tool detects the following security vulnerability: Session Cookie Path attribute is set too loosely.
Read more...
Environment
SAP NetWeaver Application Server for Java all versions
Product
SAP NetWeaver Application Server for Java all versions ; SAP NetWeaver all versions
Keywords
Securoty vulnerability, Cookie path, cookie path attribute, JSESSIONID, Path=/ , KBA , BC-JAS-WEB , Web Container, HTTP, JavaMail, Servlets , BC-JAS-SEC , Security, User Management , EP-PIN-PRT , Portal Runtime , Problem
About this page
This is a preview of a SAP Knowledge Base Article. Click more to access the full version on SAP for Me (Login required).Search for additional results
Visit SAP Support Portal's SAP Notes and KBA Search.